b8ef9d4e30eae855bdd21f81620fd5773a0f18855faa89334afe316e41da0716 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc06f849a73d0836a16feb121215f362
Size

464KB
Sample

240409-y3bktahf27
MD5

bc06f849a73d0836a16feb121215f362
SHA1

39a362defd9402ff45117314972042af45d6a1f8
SHA256

b8ef9d4e30eae855bdd21f81620fd5773a0f18855faa89334afe316e41da0716
SHA512

3a0992ac6282fe89a64d741fe62c5f68cccc9897759d3529148818b2e448e2e99dee2f0f169a01e8a4e7adcc54d69961c349c910a0c2c43be04c982fde99d0fc
SSDEEP

6144:EDkWcDpi78KSrafqV5areuyFwB+XN/O8OCLz2SCV/h1dg1+eAJfjQemZT5GtsRUZ:EDlc87eqqV5e+wBoO+32XWYB5mZQuO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  bc06f849a73d0836a16feb121215f362
- Size
  
  464KB
- MD5
  
  bc06f849a73d0836a16feb121215f362
- SHA1
  
  39a362defd9402ff45117314972042af45d6a1f8
- SHA256
  
  b8ef9d4e30eae855bdd21f81620fd5773a0f18855faa89334afe316e41da0716
- SHA512
  
  3a0992ac6282fe89a64d741fe62c5f68cccc9897759d3529148818b2e448e2e99dee2f0f169a01e8a4e7adcc54d69961c349c910a0c2c43be04c982fde99d0fc
- SSDEEP
  
  6144:EDkWcDpi78KSrafqV5areuyFwB+XN/O8OCLz2SCV/h1dg1+eAJfjQemZT5GtsRUZ:EDlc87eqqV5e+wBoO+32XWYB5mZQuO
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2